DomainMediumSignal 39/100
eadss.xyz
First Seen
Aug 7, 2021
Last Seen
Mar 9, 2026
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
39%
Signal Score
39 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
7 reports39% confidence
7
Source reports
39%
Confidence score
Category tags
active scanningattachment basedattachment phishingauthentication attackbecbotnetbrand impersonationbrute forcebusiness email compromisecommand and controlcredential accesscredential harvestingcredential harvesting phishingcredential phishingcredential stuffingcredential theftdata exfiltrationdenial of servicedistributed attacksftp brute forcehttp brute forcehydra attackindicatorlink injectionlink manipulationlink redirectionlink redirection phishinglogin attacklogin attemptsmalicious linkmalicious softwaremalwaremalware deliverymalware delivery phishingmalware distributionmalware phishingmedusa attacknetworknetwork attacksnetwork probingnetwork protocolnetwork scanningnetwork securitynetwork service scanningnmap scanphishingphishing attackphishing kitphishing-databaseprocess injectionprotocol exploitationrdp scanningreconnaissancereconnaissance activityremote accessremote servicesresearchedsecurity awarenessservice enumerationsmb scanningsmtp brute forcesocial engineeringssh attacksyn scant1018t1021t1021.001t1021.002t1040t1046t1055t1059t1059.001t1059.004t1071.001t1076t1078t1110t1110.001t1110.002t1110.003t1189t1190t1192t1486t1496t1499.002t1499.003t1563t1565t1566t1566.001t1566.002t1566.003t1566.004t1589t1589.002t1592t1595t1595.001t1595.002t1595.003t1598t1598.003tcp scantcp scanningtelnet threatudp scanvulnerability scan
Activity Timeline
Mar 9Mar 9
Threat Activity Heatmap
· Peak: 2026-03-09LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Intelligence SummaryAI Generated
The domain eadss.xyz has been identified as a significant indicator of compromise (IOC) associated with multiple cyber threats, including botnet activity, malware distribution, and phishing campaigns. First observed on August
Threat ScoreLow Risk
39
SIGNAL
Signal Score
39%
Confidence
7
Reports
First seenAug 7, 2021
Last seenMar 9, 2026
VirusTotal
Not checked
WHOIS
- description
- For POC
- domain rank
- -1
- raw
- Create date: 2024-05-26 00:00:00 Domain name: eadss.xyz Domain registrar id: 146 Domain registrar url: https://www.godaddy.com/ Expiry date: 2025-05-26 00:00:00 Name server 1: NS27.DOMAINCONTROL.COM Name server 2: NS28.DOMAINCONTROL.COM Query time: 2024-05-27 10:23:45 Registrant company: b46a98a26fe2fd9f Registrant country: United States Registrant email: f651612a2f356ad3s@ Registrant state: 30bdd2917a604c83 Update date: 2024-05-26 00:00:00
- subdomains count
- 2
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 4 years ago · Last seen 3 months ago
Appeared in 7 threat reports